571b462a2d56a8bc143429cea6fc912f36e5234f094d9c9566884c2ca4442ce0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

571b462a2d56a8bc143429cea6fc912f36e5234f094d9c9566884c2ca4442ce0
Size

463KB
Sample

240328-y3e81agd26
MD5

2fefb993baf93264ae1e4aa87064426f
SHA1

2d6a103f0f099de9a150cfac30751058ff5c8cfc
SHA256

571b462a2d56a8bc143429cea6fc912f36e5234f094d9c9566884c2ca4442ce0
SHA512

9c2e4995cd0a936577264a9849b1132025d8eeb0bff64220a9262da7cf5ede0f4fc1f6c355f284e0e830869bfdcbf1d4d6d024a18414177ac63f4c27e9a86430
SSDEEP

12288:g0lc87eqqV5e+wBV6O+aOjMMBudzVESmggIWgeBqxJU:g0SqqHeVBxKx0lVESbgWeB

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  571b462a2d56a8bc143429cea6fc912f36e5234f094d9c9566884c2ca4442ce0
- Size
  
  463KB
- MD5
  
  2fefb993baf93264ae1e4aa87064426f
- SHA1
  
  2d6a103f0f099de9a150cfac30751058ff5c8cfc
- SHA256
  
  571b462a2d56a8bc143429cea6fc912f36e5234f094d9c9566884c2ca4442ce0
- SHA512
  
  9c2e4995cd0a936577264a9849b1132025d8eeb0bff64220a9262da7cf5ede0f4fc1f6c355f284e0e830869bfdcbf1d4d6d024a18414177ac63f4c27e9a86430
- SSDEEP
  
  12288:g0lc87eqqV5e+wBV6O+aOjMMBudzVESmggIWgeBqxJU:g0SqqHeVBxKx0lVESbgWeB
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2